General

  • Target

    8267052ac612b458b12a047233d51bf4_JaffaCakes118

  • Size

    380KB

  • Sample

    241031-jyepcawkal

  • MD5

    8267052ac612b458b12a047233d51bf4

  • SHA1

    170f8a802049bbdec42f39739839eaf3ebdf0dae

  • SHA256

    a8ad8d6d3f0ed34ace3e8f19fc3be976e1f896a53ba6fd69cd58ee22d4307caa

  • SHA512

    a9a829ee27689d8d9188b6df07e8976b7664dc8f2f0085234455a04d1489109a7eebc35427b0c2e89a673a10cc72e897301cd4abd5665a463d23660bd0859fee

  • SSDEEP

    6144:cAeIifU8j6ADDzCryB/wFXAqPPGLUTdWzu4fdJnd1+95uvJZ3F3TX3GegvELTHWQ:cRFj6ADHCrwYOqvczvcuvJ/z2ewE+2pb

Malware Config

Targets

    • Target

      8267052ac612b458b12a047233d51bf4_JaffaCakes118

    • Size

      380KB

    • MD5

      8267052ac612b458b12a047233d51bf4

    • SHA1

      170f8a802049bbdec42f39739839eaf3ebdf0dae

    • SHA256

      a8ad8d6d3f0ed34ace3e8f19fc3be976e1f896a53ba6fd69cd58ee22d4307caa

    • SHA512

      a9a829ee27689d8d9188b6df07e8976b7664dc8f2f0085234455a04d1489109a7eebc35427b0c2e89a673a10cc72e897301cd4abd5665a463d23660bd0859fee

    • SSDEEP

      6144:cAeIifU8j6ADDzCryB/wFXAqPPGLUTdWzu4fdJnd1+95uvJZ3F3TX3GegvELTHWQ:cRFj6ADHCrwYOqvczvcuvJ/z2ewE+2pb

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Unsecured Credentials: Credentials In Files

      Steal credentials from unsecured files.

MITRE ATT&CK Enterprise v15

Tasks